U.S. Cybersecurity Agency CISA Deploys Anthropic's Mythos AI Model to Audit Government Code for Security Vulnerabilities
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is reportedly using Anthropic's Mythos large language model to scan government code repositories for security vulnerabilities. The agency's internal Attack Surface Evaluation Team is leading the scans, and sources indicate the audits have already uncovered a significant number of flaws, marking a major shift toward AI-assisted cybersecurity in the federal government.

Highlights
- CISA is using Anthropic's Mythos LLM to scan U.S. government code repositories for cybersecurity vulnerabilities, according to a Reuters report.
- CISA's internal Attack Surface Evaluation Team is responsible for executing the AI-powered scanning operations across federal agencies.
- The Mythos-based audits have already uncovered a substantial number of code-level vulnerabilities, marking an operational—not just experimental—deployment.
- Anthropic's Mythos model is reported to understand code semantics and logic deeply, enabling detection of complex flaws that traditional static analysis tools often miss.
- Neither CISA nor Anthropic has publicly confirmed or commented on the reported AI auditing program as of the time of publication.
U.S. Cybersecurity Agency CISA Deploys Anthropic's Mythos AI Model to Audit Government Code for Security Vulnerabilities
According to a Reuters report, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has begun using the Mythos large language model (LLM) developed by AI startup Anthropic to conduct large-scale security audits of government code repositories, proactively identifying potential cybersecurity vulnerabilities.
Attack Surface Evaluation Team Leads Scanning Operations
Sources familiar with the matter say the scans are being carried out by CISA's internal Attack Surface Evaluation Team. This dedicated unit has long conducted digital security assessments and simulated cyberattack exercises across federal agencies, and serves as a core component of CISA's active defense strategy.
Significant Number of Vulnerabilities Already Discovered
Multiple sources indicate that the audits conducted using the Mythos model have already yielded preliminary results, uncovering a substantial number of code-level vulnerabilities. This development signals that the use of generative AI for government cybersecurity has moved beyond proof-of-concept and into active operational deployment.
Implications of AI-Assisted Security Auditing
The collaboration represents a significant strategic shift for the U.S. federal government—moving away from traditional manual code reviews or conventional automated tools toward using large language models for code-level vulnerability analysis. Anthropic's Mythos model is reported to possess a deep understanding of code semantics and logical structure, enabling it to identify complex vulnerabilities that traditional static analysis tools may struggle to detect.
Neither CISA nor Anthropic has publicly commented on the report. As AI adoption in government cybersecurity continues to expand, concerns remain regarding data privacy, model reliability, and the processes by which audit findings are acted upon.
Sources: Reuters / Slashdot
原文來源: 查看原文
FAQ
Newsletter
Subscribe to our Low-Altitude Industry Newsletter
Daily curated news on low-altitude economy and drone industry, delivered to your inbox.
Reviewed and published by the LAETimes editorial desk ·


